$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft File: pcmHAk0KjqwJZAn9mewy7JBHC6M.mft (raw, json) Hash identifier: hLOCM+xkwKNkJpwOv5a6q2BKRGDeuXudB4MyzP/zhMY= Subject key identifier: 86:CB:54:26:16:4B:C0:62:EF:86:5D:38:AF:69:25:DD:8A:FE:F1:50 Authority key identifier: A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 Certificate issuer: /CN=A91E4B86/serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft Manifest number: CC Signing time: Wed 25 Mar 2026 06:02:37 +0000 Manifest this update: Wed 25 Mar 2026 06:02:36 +0000 Manifest next update: Wed 01 Apr 2026 06:02:36 +0000 Files and hashes: 1: pcmHAk0KjqwJZAn9mewy7JBHC6M.crl (hash: VSQWGTE+fAcfj/k3GoT8SPd41bQCFvbzuln5/ZUj9nc=) 2: 4C51E1D4F7E511EF9A28D363C4F9AE02.roa (hash: pKM2r60kiKPj1EOj5o/9P1X4OcOTkc7kjSEawMzaPfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B86, serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Validity Not Before: Mar 25 06:02:36 2026 GMT Not After : Apr 1 06:02:36 2026 GMT Subject: CN=69c37a7d-2dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4d:49:0d:42:2b:04:93:d7:33:45:56:8a:a6: 5f:a8:18:07:5f:7d:09:32:89:47:45:72:30:5b:62: c7:c3:2a:80:4f:3f:c0:9f:bf:a1:76:26:4f:94:95: f7:ba:00:22:a7:e8:60:1b:64:a3:59:c4:21:17:c2: c0:b8:96:01:4d:26:9b:ff:c3:0b:7b:c4:02:e0:9e: d4:b1:95:79:1b:32:82:6f:71:26:19:c4:a2:ab:56: d5:c5:26:18:17:b8:59:49:65:29:88:8e:ed:ff:0f: 01:bb:80:e2:ed:50:77:29:2a:53:3a:54:ff:47:a8: 0e:a9:b4:62:54:aa:35:7e:53:80:69:f6:55:80:f3: 0a:76:6d:dc:c5:11:ec:23:23:0d:f6:98:e9:3f:cc: 0d:df:70:b4:5d:2f:ad:9b:f6:25:e3:ba:a1:14:bf: 57:a5:c1:db:53:ca:d7:00:4e:0b:41:f4:57:f1:a2: d8:21:e9:10:6f:27:32:e1:f3:ae:cd:e6:d7:21:4b: 98:c7:6b:b9:b7:18:53:5e:a3:fa:16:38:21:f4:55: 27:68:1c:e1:7b:fe:3a:2c:51:40:e6:88:58:5c:c8: 34:4f:54:2c:9a:35:53:73:20:4c:70:90:1d:0d:38: 2a:31:93:18:7e:99:a9:5c:dc:7a:a5:60:37:8c:3e: 9e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CB:54:26:16:4B:C0:62:EF:86:5D:38:AF:69:25:DD:8A:FE:F1:50 X509v3 Authority Key Identifier: keyid:A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:70:31:93:8d:7a:0e:dd:45:3a:4f:61:0c:18:4a:df:66:3c: c9:f1:3e:a4:9c:03:3c:64:5a:57:2e:2e:13:7a:50:a3:88:89: 80:d2:9a:85:bf:2e:5d:1a:0f:d5:f4:c2:40:53:22:d8:ea:60: 09:2a:ab:98:2c:07:06:1d:2e:a4:28:4e:8e:fb:91:6e:b1:07: 96:1f:c7:cb:93:be:60:50:16:f7:20:2e:5c:e0:61:47:76:c0: ae:f3:50:5a:f8:42:95:47:57:de:09:cf:c5:c1:73:cb:e5:b7: 0e:9e:4d:34:36:f9:03:a6:e3:97:83:c1:23:b4:32:b3:a2:7b: eb:33:91:ff:e7:54:4f:e8:39:d6:ef:14:6d:cb:b8:d0:b7:b9: 0a:5a:19:b6:b0:c7:03:97:70:b8:a5:b8:5d:16:f8:a2:af:5d: 42:00:ce:d9:70:3f:70:0a:3d:42:e6:a6:2a:47:b1:b4:c8:b7: 32:31:87:5d:9a:e0:14:e7:01:7d:0d:1a:44:37:ed:30:03:54: 7b:4c:27:e3:af:29:43:33:94:7f:71:79:fd:50:bd:61:c7:e9: 92:0d:a8:11:14:4a:9e:99:03:14:5e:51:22:6c:c9:d0:81:3f: 9b:44:d8:2b:cb:8c:d9:b0:3c:e5:b1:8b:bb:98:24:c0:50:24: a1:84:9c:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCODYxMTAvBgNVBAUTKEE1Qzk4NzAyNEQwQThFQUMwOTY0MDlGRDk5RUMzMkVD OTA0NzBCQTMwHhcNMjYwMzI1MDYwMjM2WhcNMjYwNDAxMDYwMjM2WjAYMRYwFAYD VQQDEw02OWMzN2E3ZC0yZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U1JDUIrBJPXM0VWiqZfqBgHX30JMolHRXIwW2LHwyqATz/An7+hdiZPlJX3 ugAip+hgG2SjWcQhF8LAuJYBTSab/8MLe8QC4J7UsZV5GzKCb3EmGcSiq1bVxSYY F7hZSWUpiI7t/w8Bu4Di7VB3KSpTOlT/R6gOqbRiVKo1flOAafZVgPMKdm3cxRHs IyMN9pjpP8wN33C0XS+tm/Yl47qhFL9XpcHbU8rXAE4LQfRX8aLYIekQbycy4fOu zebXIUuYx2u5txhTXqP6Fjgh9FUnaBzhe/46LFFA5ohYXMg0T1QsmjVTcyBMcJAd DTgqMZMYfpmpXNx6pWA3jD6epQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIbLVCYW S8Bi74ZdOK9pJd2K/vFQMB8GA1UdIwQYMBaAFKXJhwJNCo6sCWQJ/ZnsMuyQRwuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEI4Ni84OTMzMTQ4QUY3 RTMxMUVGOEFEQThBNDFDNEY5QUUwMi9wY21IQWswS2pxd0paQW45bWV3eTdKQkhD Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BjbUhBazBLanF3SlpBbjltZXd5N0pCSEM2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI4Ni84OTMzMTQ4QUY3RTMxMUVGOEFEQThBNDFDNEY5QUUwMi9wY21IQWswS2px d0paQW45bWV3eTdKQkhDNk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArnAxk416Dt1FOk9hDBhK32Y8yfE+pJwDPGRaVy4uE3pQo4iJgNKahb8uXRoP 1fTCQFMi2OpgCSqrmCwHBh0upChOjvuRbrEHlh/Hy5O+YFAW9yAuXOBhR3bArvNQ WvhClUdX3gnPxcFzy+W3Dp5NNDb5A6bjl4PBI7Qys6J76zOR/+dUT+g51u8Ubcu4 0Le5CloZtrDHA5dwuKW4XRb4oq9dQgDO2XA/cAo9QuamKkextMi3MjGHXZrgFOcB fQ0aRDftMANUe0wn468pQzOUf3F5/VC9Ycfpkg2oERRKnpkDFF5RImzJ0IE/m0TY K8uM2bA85bGLu5gkwFAkoYScmg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:38:35 2026 by rpki-client